Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') in Skytable
Vulnerability Description
Skytable is a NoSQL database with automated snapshots and TLS. Versions prior to 0.5.1 are vulnerable to a a directory traversal attack enabling remotely connected clients to destroy and/or manipulate critical files on the host's file system. This security bug has been patched in version 0.5.1. There are no known workarounds aside from upgrading.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Vulnerability Type
对路径名的限制不恰当(路径遍历)
Vulnerability Title
Skytable 路径遍历漏洞
Vulnerability Description
Skytable是开源的一个具有自动快照和TLS的NosQL数据库。 Skytable 0.5.1之前版本存在路径遍历漏洞,远程连接的客户端利用该漏洞能够破坏和或操纵主机文件系统上的关键文件。这个安全漏洞已经在版本0.5.1中得到了修补。
CVSS Information
N/A
Vulnerability Type
N/A